Visible to the public "Case study on exploitation, detection and prevention of user account DoS through Advanced Persistent Threats"Conflict Detection Enabled

Title"Case study on exploitation, detection and prevention of user account DoS through Advanced Persistent Threats"
Publication TypeConference Paper
Year of Publication2015
AuthorsK. P. B. Anushka, Chamantha, A. P. Karunaweera, P. R. Priyashantha, H. D. R. Wickramasinghe, W. A. V. M. G. Wijethunge
Conference Name2015 Fifteenth International Conference on Advances in ICT for Emerging Regions (ICTer)
Date PublishedAug
PublisherIEEE
ISBN Number978-1-4673-9441-3
Accession Number15700914
Keywordsadvanced persistent threat, advanced persistent threats, APT, computer network security, Databases, denial of service, Electronic mail, invasive software, Irrigation, ISO standards, Monitoring, Protocols, pubcrawl170101, security analysts, Servers, sophisticated attack, system engineers, user account DoS, user account lockout features, usingastealthy attack mechanism, XMPP based botnet, XMPP bots
Abstract

Security analysts implement various security mechanisms to protect systems from attackers. Even though these mechanisms try to secure systems, a talented attacker may use these same techniques to launch a sophisticated attack. This paper discuss about such an attack called as user account Denial of Service (DoS) where an attacker uses user account lockout features of the application to lockout all user accounts causing an enterprise wide DoS. The attack has being simulated usingastealthy attack mechanism called as Advanced Persistent Threats (APT) using a XMPP based botnet. Through the simulation, researchers discuss about the patterns associated with the attack which can be used to detect the attack in real time and how the attack can be prevented from the perspective of developers, system engineers and security analysts.

URLhttp://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=7377687&isnumber=7377646
DOI10.1109/ICTER.2015.7377687
Citation Key7377687